OpenIDConnect playground algorithm issue

reece1 · October 9, 2024, 6:31am

The header in the Id_token that openidconnect.net produces says that the algorithm is HS256

{
  "alg": "HS256",
  "typ": "JWT"
}

However the JWKS doesn’t have HS256

So I can’t validate the signature, any idea if I’m doing something wrong or is this tool borked?

Thanks

rueben.tiow · October 9, 2024, 5:46pm

I recommend going to your Application settings > Advanced Settings > OAuth and setting the JSON Web Token (JWT) Signature Algorithm option to RS256.

That should generate RS256 JWT tokens.

Let me know if you have any further questions.

Thanks,
Rueben

system · October 23, 2024, 5:46pm

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Expected the ID token to be signed with HS256 JWT.io jwt	1	4277	October 9, 2021
Couldn't using Signature Algorithm RS256 JWT.io rs256	2	4363	December 24, 2018
Changing signing algorithm doesn't work Help dashboard , algorithm	3	5188	March 2, 2018
Social Login with HS256 Help social-connections , rs256 , login , social , hs256	6	4871	March 2, 2018
Jwt verification error Help jwt , auth0	3	7368	September 4, 2019